AC-17(3): Managed Access Control Points

Control Family:

Access Control

Parent Control:

AC-17: Remote Access

CSF v1.1 References:

Threats Addressed:


  • Moderate
  • High

Next Version:

Control Statement

The information system routes all remote accesses through [Assignment: organization-defined number] managed network access control points.

Supplemental Guidance

Limiting the number of access control points for remote accesses reduces the attack surface for organizations. Organizations consider the Trusted Internet Connections (TIC) initiative requirements for external network connections.